Our cookie policy in brief

A cookie allows us to distinguish you from other users of our site and recognises your preferences, provides personalised content, security and enables our site to function more efficiently. This helps us to give you the best possible experience when you browse, and also allows us to make our site better for you. We use session and persistent cookies, which are stored on your computer or electronic device unless you object (see below). Session cookies are cookies that expire at the end of your browsing session whereas persistent cookies are stored on your device in-between sessions.

 Our full cookie policy

Types of cookies

A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer or electronic device unless you object (see below). Our website starlingbank.com (“our site”) and each of its web pages and subdomains (including www.starlingbank.com, help.starlingbank.com, settleup.starlingbank.com and app.starlingbank.com) uses two types of cookies: first and third party cookies. First party cookies are cookies set by us, compared to third party cookies which are set by someone other than us and which collects information about you which may be sent to the third party.

The categories of cookies hosted on our site are known as:

  • essential/necessary cookies for running the website. These cookies help you to access our site and each of its web pages and subdomains, by enabling basic functions like cookie consent. These are essential to the web pages and sub domains’ functionality and cannot be disabled by you; and
  • non-essential cookies including analytical/performance, functionality and targeting cookies. These cookies collect anonymous statistics to enable us to improve our site and each of its pages and subdomains; provide you with full functionality of our site; and third party cookies to collect and build a profile of your interest and show you relevant advertisements on other websites. These types of cookies do not store personal information in itself but are based on a unique identification in your browser and devices which could identify you if combined with other relevant data (see below for more information about third party cookies). These cookies will not be set without your permission.

Our online banking website (app.starlingbank.com) only uses essential/necessary cookies.

The table below explains the cookies we use and why.

Essential cookies

advertisingConsent

Provider

Starling Bank

Purpose

Stores the user’s cookie consent state.

Expiration

90 days

analyticsConsent

Provider

Starling Bank

Purpose

Stores the user’s cookie consent state.

Expiration

90 days

m

Provider

Stripe

Purpose

Only used on settleup.starlingbank.com. Stripe is a payment processing service used on settleup.starlingbank.com. These cookies aid in fraud detection.

Expiration

2 years

__stripe_mid

Provider

Stripe

Purpose

Only used on settleup.starlingbank.com. Stripe is a payment processing service used on settleup.starlingbank.com. These cookies aid in fraud detection.

Expiration

1 year

__stripe_sid

Provider

Stripe

Purpose

Only used on settleup.starlingbank.com. Stripe is a payment processing service used on settleup.starlingbank.com. These cookies aid in fraud detection.

Expiration

30 minutes

__cfRuid

Provider

CloudFlare

Purpose

Only used on help.starlingbank.com. Used to detect malicious visitors to our websites and minimises blocking legitimate users.

Expiration

30 days

_cf_bm

Provider

CloudFlare

Purpose

Only used on help.starlingbank.com. Supports Cloudflare Bot Management by managing incoming traffic that matches criteria associated with bots.

Expiration

30 days

__zlcmid

Provider

Zendesk

Purpose

Only used on help.starlingbank.com. Store visitor’s ID for widget’s authentication.

Expiration

1 year

__zlcstore

Provider

Zendesk

Purpose

Only used on help.starlingbank.com. This cookie stores information about the current status of the chat delivered by Zopim Chat.

Expiration

Persistent

zte2095

Provider

Zendesk

Purpose

Only used on help.starlingbank.com. This cookie is used to enable Zendesk chat load.

Expiration

Session

__zlcid

Provider

Zendesk

Purpose

Only used on help.starlingbank.com. This cookie is used to identify a device across visits, and also across a single chat session.

Expiration

Persistent

_help_center_session

Provider

Zendesk

Purpose

Only used on help.starlingbank.com. Preserves users states across page requests.

Expiration

Session

_zendesk_session

Provider

Zendesk

Purpose

Only used on help.starlingbank.com. Preserves users states across page requests.

Expiration

Session

_zendesk_shared_session

Provider

Zendesk

Purpose

Only used on help.starlingbank.com. Preserves users states across page requests.

Expiration

Session

Provider

Purpose

Expiration

advertisingConsent

Starling Bank

Stores the user’s cookie consent state.

90 days

analyticsConsent

Starling Bank

Stores the user’s cookie consent state.

90 days

m

Stripe

Only used on settleup.starlingbank.com. Stripe is a payment processing service used on settleup.starlingbank.com. These cookies aid in fraud detection.

2 years

__stripe_mid

Stripe

Only used on settleup.starlingbank.com. Stripe is a payment processing service used on settleup.starlingbank.com. These cookies aid in fraud detection.

1 year

__stripe_sid

Stripe

Only used on settleup.starlingbank.com. Stripe is a payment processing service used on settleup.starlingbank.com. These cookies aid in fraud detection.

30 minutes

__cfRuid

CloudFlare

Only used on help.starlingbank.com. Used to detect malicious visitors to our websites and minimises blocking legitimate users.

30 days

_cf_bm

CloudFlare

Only used on help.starlingbank.com. Supports Cloudflare Bot Management by managing incoming traffic that matches criteria associated with bots.

30 days

__zlcmid

Zendesk

Only used on help.starlingbank.com. Store visitor’s ID for widget’s authentication.

1 year

__zlcstore

Zendesk

Only used on help.starlingbank.com. This cookie stores information about the current status of the chat delivered by Zopim Chat.

Persistent

zte2095

Zendesk

Only used on help.starlingbank.com. This cookie is used to enable Zendesk chat load.

Session

__zlcid

Zendesk

Only used on help.starlingbank.com. This cookie is used to identify a device across visits, and also across a single chat session.

Persistent

_help_center_session

Zendesk

Only used on help.starlingbank.com. Preserves users states across page requests.

Session

_zendesk_session

Zendesk

Only used on help.starlingbank.com. Preserves users states across page requests.

Session

_zendesk_shared_session

Zendesk

Only used on help.starlingbank.com. Preserves users states across page requests.

Session

Analytical cookies

_ga

Provider

Google

Purpose

Used to distinguish users.

Expiration

2 years

_gid

Provider

Google

Purpose

Used to distinguish users.

Expiration

24 hours

_gat

Provider

Google

Purpose

Used to throttle request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named _dc_gtm_.

Expiration

1 minute

AMP_TOKEN

Provider

Google

Purpose

Contains a token that can be used to retrieve a Client ID from AMP Client ID service. Other possible values indicate opt-out, inflight request or an error retrieving a Client ID from AMP Client ID service.

Expiration

30 seconds to 1 year

_gac_<property-id>

Provider

Google

Purpose

Contains campaign related information for the user. If you have linked your Google Analytics and Google Ads accounts, Google Ads website conversion tags will read this cookie unless you opt-out.

Expiration

90 days

collect

Provider

Google

Purpose

Used to send data to Google Analytics about the visitor’s device and behaviour.

Expiration

Session

_gaexp

Provider

Google

Purpose

Used to determine a user’s inclusion in an experiment and the expiry of experiments a user has been included in.

Expiration

Depends on the length of the experiment, but typically 90 days.

Provider

Purpose

Expiration

_ga

Google

Used to distinguish users.

2 years

_gid

Google

Used to distinguish users.

24 hours

_gat

Google

Used to throttle request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named _dc_gtm_.

1 minute

AMP_TOKEN

Google

Contains a token that can be used to retrieve a Client ID from AMP Client ID service. Other possible values indicate opt-out, inflight request or an error retrieving a Client ID from AMP Client ID service.

30 seconds to 1 year

_gac_<property-id>

Google

Contains campaign related information for the user. If you have linked your Google Analytics and Google Ads accounts, Google Ads website conversion tags will read this cookie unless you opt-out.

90 days

collect

Google

Used to send data to Google Analytics about the visitor’s device and behaviour.

Session

_gaexp

Google

Used to determine a user’s inclusion in an experiment and the expiry of experiments a user has been included in.

Depends on the length of the experiment, but typically 90 days.

Functional cookies

yt-remote-cast-installed

Provider

youtube-nocookie.com

Purpose

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Expiration

Session

yt-remote-connected-devices

Provider

youtube-nocookie.com

Purpose

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Expiration

Persistent

yt-remote-device-id

Provider

youtube-nocookie.com

Purpose

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Expiration

Persistent

yt-remote-fast-check-period

Provider

youtube-nocookie.com

Purpose

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Expiration

Session

yt-remote-session-app

Provider

youtube-nocookie.com

Purpose

Used to send data to Google Analytics about the visitor’s device and behaviour.

Expiration

Session

yt-remote-session-name

Provider

youtube-nocookie.com

Purpose

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Expiration

Session

Provider

Purpose

Expiration

yt-remote-cast-installed

youtube-nocookie.com

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Session

yt-remote-connected-devices

youtube-nocookie.com

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Persistent

yt-remote-device-id

youtube-nocookie.com

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Persistent

yt-remote-fast-check-period

youtube-nocookie.com

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Session

yt-remote-session-app

youtube-nocookie.com

Used to send data to Google Analytics about the visitor’s device and behaviour.

Session

yt-remote-session-name

youtube-nocookie.com

Stores the user’s video player preferences in HTML local storage using embedded YouTube video.

Session

Third party cookies

We apply the following third party targeting cookies on our website.

MUID

Provider

bing.com

Purpose

Microsoft Advertising (Bing Ads) uses the Microsoft User Identifier (MUID) to help count valid clicks.

Expiration

390 days

DSID

Provider

doubleclick.net

Purpose

Used to link user’s activity across devices if they’ve previously signed in to a Google Account on another device.

Expiration

399 days

IDE

Provider

doubleclick.net

Purpose

Used for advertising Google serves across the web on non-Google sites.

Expiration

399 days

RUL

Provider

doubleclick.net

Purpose

Pending.

Expiration

399 days

c_user

Provider

Facebook

Purpose

The c_user cookie contains the user ID of the currently logged in user.

Expiration

393 days

datr

Provider

Facebook

Purpose

The purpose of the datr cookie is to identify the web browser being used to connect to Facebook independent of the logged in user.

Expiration

2 years

dpr

Provider

Facebook

Purpose

Numeric value between 1 and 2 indicating device pixel ratio. Allows delivery of the optimal experience for the user’s screen.

Expiration

7 days

fr

Provider

Facebook

Purpose

Used to deliver, measure and improve the relevancy of ads.

Expiration

90 days

presence

Provider

Facebook

Purpose

Supports the use of Messenger chat windows.

Expiration

Session

sb

Provider

Facebook

Purpose

Stores browser details and allows Facebook to identify a user’s browser for account security purposes.

Expiration

2 years

spin

Provider

Facebook

Purpose

Pending.

Expiration

24 hours

xs

Provider

Facebook

Purpose

Used to store a unique session ID.

Expiration

365 days

1P_JAR

Provider

Google

Purpose

Carries out information about how the end user uses the website and any advertising that the end user may have seen before visiting the said website.

Expiration

1 month

ANID

Provider

Google

Purpose

Used to customize ads on Google properties, like Google Search.

Expiration

1 month

CONSENT

Provider

Google

Purpose

Used to store cookie consent preferences.

Expiration

20 years and 1 month

NID

Provider

Google

Purpose

Used to remember information that changes the way the site behaves or looks, such as your preferred language or the region a user is in.

Expiration

1 month

__Secure-3PAPISID

Provider

Google

Purpose

Used by for targeting purposes to build a profile of the website visitor’s interests in order to show relevant & personalised Google advertising.

Expiration

2 years

__Secure-3PSID

Provider

Google

Purpose

Used by for targeting purposes to build a profile of the website visitor’s interests in order to show relevant & personalised Google advertising.

Expiration

2 years

__Secure-3PSIDCC

Provider

Google

Purpose

Used by for targeting purposes to build a profile of the website visitor’s interests in order to show relevant & personalised Google advertising.

Expiration

2 years

UserMatchHistory

Provider

LinkedIn

Purpose

Used for LinkedIn Ads ID syncing.

Expiration

30 days

bcookie

Provider

LinkedIn

Purpose

Browser Identifier cookie to uniquely identify devices accessing LinkedIn to detect abuse on the platform.

Expiration

2 years

lang

Provider

LinkedIn

Purpose

Used to remember a user’s language setting.

Expiration

Session

li_oatml

Provider

LinkedIn

Purpose

Used to identify LinkedIn Members off LinkedIn for advertising and analytics outside the Designated Countries and, for a limited time, advertising in the Designated Countries.

Expiration

30 days

liap

Provider

LinkedIn

Purpose

Used by non-www.domains to denote the logged in status of a member.

Expiration

365 days

lidc

Provider

LinkedIn

Purpose

Used to optimize data center selection.

Expiration

24 hours

lissc

Provider

LinkedIn

Purpose

Used to ensure there is correct SameSite attribute for all cookies in that browser.

Expiration

365 days

sdsc

Provider

LinkedIn

Purpose

Signed data service context cookie used for database routing to ensure consistency across all databases when a change is made.

Expiration

Session

_pinterest_cm

Provider

Pinterest

<